Archived from groups: microsoft.public.windowsxp.security_admin (
More info?)
Hi all...
I gave up on fixing the problem. I installed a new hard drive, reformatted
it, did a clean install, and all is well.
When I have a moment (now I have a problem with my own computer!), I will
certainly try all the suggestions here.
Thanks again; you guys rock!
John
"David H. Lipman" wrote:
> From: "JohnnyJomp" <JohnnyJomp@discussions.microsoft.com>
>
> | Hi Malke.
> | I reformatted the HD, installed XP Home, attached to the internet, and IE
> | opened automatically everytime I booted up, going to a non-MS site.
> | I reformatted, reinstalled another few times, and still have issues like a
> | dos-like window opending up automatically, warning-like notices telling me to
> | go to non-MS sites to download security software, etc.
> | My antivirus software detects a virus that it can not rename, delete or
> | disinfects, even after reformatting again, etc.
> | John
>
> Your symptoms are not that of a Boot Sector Infector.
>
> You did state "My antivirus software detects a virus..." but you did not tell us the AV
> application nor provide us with the fully qualified path and name of the infected file or
> the name of the virus that file is infected with. It is more than difficult to provide help
> with so little information.
>
> Just to be sure, you can use the IVINIT utility at Invircible which handles boot sector
> infectors.
>
http://www.invircible.com/iv_tools.php#Ivinit
>
> You can also use the Multy vendor AV scanner utility for other types of viruses.
>
>
> Download MULTI_AV.EXE from the URL --
>
http://www.ik-cs.com/programs/virtools/Multi_AV.exe
>
> It is a self-extracting ZIP file that contains the Kixtart Script Interpreter {
>
http://kixtart.org Kixtart is CareWare } three batch files, five Kixtart scripts, one Link
> (.LNK) file, this PDF instruction file and two utilities; UNZIP.EXE and WGET.EXE. It will
> simplify the process of using; Sophos, Trend and McAfee Anti Virus Command Line Scanners to
> remove
> viruses and various other malware.
>
> C:\AV-CLS\StartMenu.BAT -- { or Double-click on 'Start Menu' in C:\AV-CLS}
> This will bring up the initial menu of choices and should be executed in Normal Mode. This
> way all the components can be downloaded from each AV vendor’s web site.
> The choices are; Sophos, Trend, McAfee, Exit the menu and Reboot the PC.
>
> You can choose to go to each menu item and just download the needed files or you can
> download the files and perform a scan in Normal Mode. Once you have downloaded the files
> needed for each scanner you want to use, you should reboot the PC into Safe Mode [F8 key
> during boot] and re-run the menu again and choose which scanner you want to run in Safe
> Mode. It is suggested to run the scanners in both Safe Mode and Normal Mode.
>
> When the menu is displayed hitting 'H' or 'h' will bring up a more comprehensive PDF help
> file.
>
> To use this utility, perform the following...
> Execute; Multi_AV.exe { Note: You must use the default folder C:\AV-CLS }
> Choose; Unzip
> Choose; Close
>
> Execute; C:\AV-CLS\StartMenu.BAT
> { or Double-click on 'Start Menu' in C:\AV-CLS }
>
> NOTE: You may have to disable your software FireWall or allow WGET.EXE and/or FTP.EXE to go
> through your FireWall to allow them to download the needed AV vendor related files.
>
> * * * Please report back your results * * *
>
>
> --
> Dave
>
http://www.claymania.com/removal-trojan-adware.html
>
http://www.ik-cs.com/got-a-virus.htm
>
>
>